Описание
jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue.
Ссылки
- Mailing ListPatchThird Party Advisory
- Issue TrackingMailing List
- Patch
- Issue TrackingPatch
- ExploitVendor Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingMailing List
- Patch
- Issue TrackingPatch
- ExploitVendor Advisory
Уязвимые конфигурации
EPSS
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
Связанные уязвимости
jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue.
jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue.
jq is a command-line JSON processor. Version 1.7 is vulnerable to stac ...
Уязвимость функционального языка программирования jq, связанная с возможностью записи за границами буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.2 Medium
CVSS3
5.5 Medium
CVSS3